summaryrefslogtreecommitdiff
path: root/src/cryptography/hazmat/bindings/_rust
Commit message (Collapse)AuthorAgeFilesLines
* support X.509 certificate PSS signing (#8888)Paul Kehrer2023-05-101-0/+2
| | | | | | | | | | | | | * support X.509 certificate PSS signing no CSR, CRL, etc * handle PSS.(MAX_LENGTH, DIGEST_LENGTH), review feedback * name the kwarg * test improvements * skip if sha3 isn't supported
* Move is_fips logic to Rust (#8822)Alex Gaynor2023-04-251-0/+1
|
* Convert KDFs to Rust (#8787)Alex Gaynor2023-04-252-0/+24
|
* Migrate DH to Rust (#8768)Alex Gaynor2023-04-242-0/+24
|
* Use pyo3's facilities for exceptions (#8785)Alex Gaynor2023-04-221-0/+17
|
* Convert HMAC to Rust (#8781)Alex Gaynor2023-04-222-0/+23
|
* Convert hashes to Rust (#8775)Alex Gaynor2023-04-212-0/+19
|
* Convert ed448 to Rust (#8705)Alex Gaynor2023-04-112-1/+21
|
* Convert ed25519 to Rust (#8697)Alex Gaynor2023-04-102-2/+22
|
* Migrate x448 to Rust (#8691)Alex Gaynor2023-04-102-2/+16
|
* Migrate x25519 to use rust-openssl (#7933)Alex Gaynor2023-03-242-0/+18
|
* Simplify/unify Rust and Python OpenSSL error handling (#8552)Alex Gaynor2023-03-201-0/+10
|
* Support handling OpenSSL errors from Rust code (#8530)Alex Gaynor2023-03-161-0/+3
|
* Ressurect the PoC of OpenSSL from Rust (#7164)Alex Gaynor2023-03-152-0/+13
|
* Make Union type aliases a documented public API (#8168)Marti Raudsepp2023-03-072-6/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Rename Union type aliases to CamelCase Many `typing.Union` type aliases were previously using `UPPER_SNAKE_CASE`, but Python's convention is `CamelCase` for these (e.g. https://docs.python.org/3/library/typing.html#type-aliases) * Add utils.deprecated for the old non-underscore type aliases * Added documentation for new type aliases & minor tweaks * Use 'versionadded:: 40.0.0' * Fix CertificatePublicKeyTypes vs CertificateIssuerPublicKeyTypes. Rename CertificatePrivateKeyTypes to CertificateIssuerPrivateKeyTypes * Fix imports (ruff) * Fix one more versionadded * Tweak docs & Reorder: CertificateIssuerPublicKeyTypes before CertificateIssuerPrivateKeyTypes * Fix test mypy errors using cast() * Fix black, oops * Revert "Fix black, oops" This reverts commit 85344e231d697bdc0940e105f7aed729445f9743. * Revert "Fix test mypy errors using cast()" This reverts commit b272d8ca95fbbbc62060663f9e8930a139a7a43e. * Revert type of SubjectKeyIdentifier.from_public_key arg * Changelog tweak
* Add an ignore for the newest ruff (#8440)Alex Gaynor2023-03-051-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | * Add an ignore for the newest ruff Clearly document why we have each of our ignores * Bump ruff from 0.0.253 to 0.0.254 Bumps [ruff](https://github.com/charliermarsh/ruff) from 0.0.253 to 0.0.254. - [Release notes](https://github.com/charliermarsh/ruff/releases) - [Changelog](https://github.com/charliermarsh/ruff/blob/main/BREAKING_CHANGES.md) - [Commits](https://github.com/charliermarsh/ruff/compare/v0.0.253...v0.0.254) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Switch from flake8 to ruff (#7920)Alex Gaynor2022-12-214-6/+4
| | | It's more than 60x faster.
* x509: add `load_pem_x509_certificates` (#7878)William Woodruff2022-12-051-0/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * x509: add `load_pem_x509_certificates` This behaves similarly to `load_pem_x509_certificate`, except that it returns a list of loaded certificates instead of just the first X.509 certificate. It raises if the input contains no PEM-encoded certificates, or if PEM or certificate parsing fail. Signed-off-by: William Woodruff <william@trailofbits.com> * tests/x509: blacken Signed-off-by: William Woodruff <william@trailofbits.com> * Update docs/x509/reference.rst Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com> * tests/x509: assert each item in the list is actually a certificate Signed-off-by: William Woodruff <william@trailofbits.com> * bindings: expose `load_pem_x509_certificates` in `x509.pyi` Signed-off-by: William Woodruff <william@trailofbits.com> * tests/x509: test the structure of each cert a bit This has the transitive effect of establishing a fixed order. Signed-off-by: William Woodruff <william@trailofbits.com> * CHANGELOG: record changes Signed-off-by: William Woodruff <william@trailofbits.com> * docs: add PEM to spellcheck allowlist Signed-off-by: William Woodruff <william@trailofbits.com> * docs/x509: document expected param Signed-off-by: William Woodruff <william@trailofbits.com> Signed-off-by: William Woodruff <william@trailofbits.com> Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
* Annotate a few more functions (#7876)Alex Gaynor2022-12-041-1/+7
|
* Rewrite PKCS7 signature generation in Rust (#7729)Alex Gaynor2022-11-251-0/+6
| | | | | * Rewrite PKCS7 signature generation in Rust * Update src/rust/src/pkcs7.rs
* Convert basic PKCS7 generation to Rust (#7700)Alex Gaynor2022-10-121-0/+9
|
* Remove destroy from FixedPool (#7602)Alex Gaynor2022-09-111-1/+0
| | | turns out we don't need it
* Added FixedPool abstraction for use in optimizing various types (#7303)Alex Gaynor2022-07-161-0/+16
|
* Add license headers to files that need them (#7170)Alex Gaynor2022-05-014-0/+16
|
* Migrate ObjectIdentifier to Rust (#7153)Alex Gaynor2022-04-301-0/+7
|
* Allow to serialize extension values as DER bytes strings (#6346)Felix Fontein2021-11-121-0/+1
| | | | | * Allow to serialize extension values as DER bytes string. * Prepare test for SignedCertificateTimestamps.
* Convert CRL creation to Rust (#6496)Alex Gaynor2021-10-311-2/+5
| | | | | | | | | | | * Convert CRL creation to Rust * fixes * small reflows * Delete all teh code * flake8
* Convert CSR creation to Rust (#6495)Alex Gaynor2021-10-311-1/+5
| | | | | | | | | * Convert CSR creation to Rust * put this back * unused * coverage
* Convert x.509 certificate generation to Rust (#6479)Alex Gaynor2021-10-291-1/+8
| | | | | | | | | | | * Convert x.509 certificate generation to Rust * flake8 * Coverage shenangins * moar hashes * moar hashes
* Port OCSP Response generation to Rust (#6460)Alex Gaynor2021-10-251-1/+12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * xxx * The rest * file * first milestone! * progress * Good progress * Aaaand, tests pass! * linter fixes * moar linting * moar linting * style on that coverage * Flesh this out * reformat * Remove RSA+DSA support, will be added back later * Refactor to avoid todo!() branch * sha384 support * Unused * Suggesting I learn to spell? It's a bold move cotton, let's see how it pays off
* Port OCSPRequest creation to Rust (#6446)Alex Gaynor2021-10-211-2/+6
|
* encode x509.Name.public_bytes using rust (#6424)Paul Kehrer2021-10-161-0/+1
| | | | | | | | | | | | | | | * encode x509.Name.public_bytes using rust * mypy * remove x509_name_bytes entirely * black * simplify type signature * black again * remove branches
* remove non-real type declaration in x509.pyi (#6381)Alex Gaynor2021-10-061-3/+0
|
* Structure X.509 code to start moving extension encoding to Rust (#6369)Alex Gaynor2021-10-053-8/+6
| | | | | | | | | | | | | | | * Structure X.509 code to start moving extension encoding to Rust * clippy + flake8 fixes * black * Added necessary test cases for coverage * flake8 * flake8 * Unused
* Parse CSRs in pure rust (#6312)Paul Kehrer2021-09-281-0/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Parse CSRs in pure rust * cargo fmt * various improvements * remove more unneeded things * remove more things * fix most coverage issues * refactor and a new test using a fresh vector * update TODOs * address review feedback * simplify * implicit required now supported * review feedback * try to satisfy the coverage gods * simplify more * add a new test
* Convert OCSPResponse to be Rust (#6297)Alex Gaynor2021-09-251-7/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | * uhh, it's a start * forward progress * ABC: All [Implented] But Certificates * Certifiates too! * Warning clean * clippy * unused import * black * mypy * unused functions * reformat code * Get the new tests passing * rewrite for coverage :-/
* Migrate CRL implementation to Rust (#6276)Alex Gaynor2021-09-201-4/+4
| | | (Lots of commits that got squashed)
* parse certificates with pure rust (#6147)Paul Kehrer2021-07-251-8/+15
| | | | | | | | | | | * parse certificates with pure rust * fix coverage * various review comments * save the buffer * more feedback
* [hack] see if putting this on one line fixes coverage (#6173)Alex Gaynor2021-07-142-6/+4
| | | | | * Attempt to fix coverage by shortening lines * Comment
* Move SCT encoding/decoding to Rust (#6098)Alex Gaynor2021-06-102-1/+12
|
* oxidize crlnumber (#6079)Paul Kehrer2021-05-311-0/+1
| | | | | * oxidize crlnumber * cargo fmt
* Convert CRLReason parsing to rust (#6076)Alex Gaynor2021-05-311-0/+3
|
* Simplify delegation of rust for extension parsing (#6075)Alex Gaynor2021-05-312-2/+3
| | | Also now supports part openssl/part rust setups
* Move OCSPRequest implementation to Rust (#6059)Alex Gaynor2021-05-302-4/+8
| | | * Move OCSPRequest implementation to Rust
* Port OCSP Request extension parsing to Rust (#6005)Alex Gaynor2021-04-241-1/+4
| | | | | | | | | | | * Port OCSP Request extension parsing to Rust * Added test for rando oid * Update src/rust/src/asn1.rs Co-authored-by: Paul Kehrer <paul.l.kehrer@gmail.com> Co-authored-by: Paul Kehrer <paul.l.kehrer@gmail.com>
* Port X.509 test parser to Rust (#5979)Alex Gaynor2021-04-211-0/+7
|
* Convert encoding two X.509 extensions to Rust (#5977)Alex Gaynor2021-04-151-0/+2
|
* fixes #5975 -- added typing stubs for rust module (#5976)Alex Gaynor2021-04-152-0/+11
View Lorry Controller Status